Chore: Add S3 bucket policy (#746)
This commit is contained in:
parent
06153a96ed
commit
b98a64d2dd
3 changed files with 60 additions and 0 deletions
BIN
docs/development/project-setup/storage/images/s3-users-list.png
Normal file
BIN
docs/development/project-setup/storage/images/s3-users-list.png
Normal file
Binary file not shown.
After Width: | Height: | Size: 653 KiB |
BIN
docs/development/project-setup/storage/images/user-arn.png
Normal file
BIN
docs/development/project-setup/storage/images/user-arn.png
Normal file
Binary file not shown.
After Width: | Height: | Size: 699 KiB |
60
docs/development/project-setup/storage/s3-bucket.md
Normal file
60
docs/development/project-setup/storage/s3-bucket.md
Normal file
|
@ -0,0 +1,60 @@
|
|||
---
|
||||
path: "/docs/configuring-s3-bucket-as-cloud-storage"
|
||||
title: "Configuring Cloud Storage"
|
||||
---
|
||||
|
||||
### Using Amazon S3
|
||||
|
||||
You can get started with [Creating an S3 bucket](https://docs.aws.amazon.com/AmazonS3/latest/gsg/CreatingABucket.html) and [Create an IAM user](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_create.html) to configure the following details.
|
||||
|
||||
Configure the following env variables.
|
||||
|
||||
```bash
|
||||
ACTIVE_STORAGE_SERVICE='amazon'
|
||||
S3_BUCKET_NAME=
|
||||
AWS_ACCESS_KEY_ID=
|
||||
AWS_SECRET_ACCESS_KEY=
|
||||
AWS_REGION=
|
||||
```
|
||||
|
||||
### S3 Bucket policy
|
||||
|
||||
Inorder to use S3 bucket in Chatwoot, a policy has to be set with the correct credentials. A sample policy is given below, as the listed actions are required for the storage to work.
|
||||
|
||||
```json
|
||||
{
|
||||
"Version": "2012-10-17",
|
||||
"Id": "Policyxxx",
|
||||
"Statement": [
|
||||
{
|
||||
"Sid": "Stmtxxx",
|
||||
"Effect": "Allow",
|
||||
"Principal": {
|
||||
"AWS": "your-user-arn"
|
||||
},
|
||||
"Action": [
|
||||
"s3:DeleteObject",
|
||||
"s3:GetObject",
|
||||
"s3:ListBucket",
|
||||
"s3:PutObject"
|
||||
],
|
||||
"Resource": [
|
||||
"arn:aws:s3:::your-bucket-name",
|
||||
"arn:aws:s3:::your-bucket-name/*"
|
||||
]
|
||||
}
|
||||
]
|
||||
}
|
||||
```
|
||||
|
||||
Replace your *bucket name* in the appropriate places.
|
||||
|
||||
**User ARN** can be found using the following steps:
|
||||
|
||||
1. Login to AWS Console. Go to IAM, and click on Users from the left sidebar. You will be to see the list of users as follows.
|
||||
|
||||
![s3-users-list](./images/s3-users-list.png)
|
||||
|
||||
2. Click on the user, you will be to see a screen as shown below. Copy the User ARN and paste it in the above policy.
|
||||
|
||||
![user-arn](./images/user-arn.png)
|
Loading…
Reference in a new issue